CLEANACCESS Archives

October 2007

CLEANACCESS@LISTSERV.MIAMIOH.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Apple Updates
From:
Homer Manila <[log in to unmask]>
Reply To:
Cisco Clean Access Users and Administrators <[log in to unmask]>
Date:
Fri, 5 Oct 2007 11:43:28 -0400
Content-Type:
text/plain
Parts/Attachments:
text/plain (19 lines) 
Does anyone have a list of hosts they allow in their traffic rules for 
the unauthenticated role to allow Apple Updates to happen before 
authentication?  I originally allowed:

swscan.apple.com      equals
swquery.apple.com    equals

but they weren't enough, so I did a packet capture and saw that I needed 
to allow some akamai servers to get it to work, but obviously I can't do 
that, or users will get a
whole slew of sites they shouldn't be getting.

Thoughts?

-- 
--Homer Manila
Network Security Administrator
OIT, American University

ATOM RSS1 RSS2